ID
VAR-201006-0509
TITLE
Unknown buffer overflow vulnerability in Twitter on iPhone platform
Trust: 0.6
DESCRIPTION
Twitter for iPhone is a Twitter client for the iPhone platform. There is a buffer overflow on the Twitter client under the iPhone platform that can be triggered by an infrequently used user profile location. No detailed vulnerability details are currently available. Twitter for iPhone is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions. Versions prior to Twiiter for iPhone 3.0.1 are vulnerable
Trust: 0.81
IOT TAXONOMY
category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
vendor: | no | model: | - | scope: | - | version: | - | Trust: 0.6 |
vendor: | model: | for iphone | scope: | eq | version: | 3.0 | Trust: 0.3 | |
vendor: | model: | for iphone | scope: | ne | version: | 3.0.1 | Trust: 0.3 |
THREAT TYPE
network
Trust: 0.3
TYPE
Boundary Condition Error
Trust: 0.3
PATCH
title: | Unknown buffer overflow patch for Twitter on iPhone platform | url: | https://www.cnvd.org.cn/patchinfo/show/515 | Trust: 0.6 |
EXTERNAL IDS
db: | BID | id: | 41129 | Trust: 0.9 |
db: | CNVD | id: | CNVD-2010-1182 | Trust: 0.6 |
REFERENCES
url: | http://fnstenv.blogspot.com/2010/06/twitter-for-iphone.html | Trust: 0.9 |
url: | http://itunes.apple.com/ca/app/twitter/id333903271?mt=8 | Trust: 0.3 |
url: | http://twitter.com/ | Trust: 0.3 |
CREDITS
atebits
Trust: 0.3
SOURCES
db: | CNVD | id: | CNVD-2010-1182 |
db: | BID | id: | 41129 |
LAST UPDATE DATE
2022-05-17T01:45:44.394000+00:00
SOURCES UPDATE DATE
db: | CNVD | id: | CNVD-2010-1182 | date: | 2010-06-25T00:00:00 |
db: | BID | id: | 41129 | date: | 2010-06-24T00:00:00 |
SOURCES RELEASE DATE
db: | CNVD | id: | CNVD-2010-1182 | date: | 2010-06-25T00:00:00 |
db: | BID | id: | 41129 | date: | 2010-06-24T00:00:00 |